IMPORTANT INFORMATION

Only applications that meet Aquafin's specified criteria (skills, work experience, language proficiency, and availability) in this job post will be considered. If the above is not respected, Aquafin reserves the right to reject the application.

About Aquafin

At Aquafin, we connect people with people, with water, with technology. We stay ahead of change and work towards a living environment in harmony with water. We do this through water purification and sewage, but also through innovation and the energy transition.

As a Security Engineer, you are jointly responsible for monitoring, maintaining, and improving our security solutions, with a strong focus on the Microsoft Security stack. You work closely with IT colleagues, the CISO, and external partners to detect, (have) mitigate, and structurally address risks within the landscape.

Relevant experience

You have already built a solid career in the field of ICT and security with a focus on Microsoft and are well informed about new trends in the market.

Strong expertise

• Daily management of Microsoft Security components (Defender for Endpoint, Defender for Cloud, Defender for Identity, …)

• Going through security checklists

• Analyzing Security Events: Actively following up on notifications, alerts, and vulnerabilities (+ formulating improvement proposals)

• Assigning and following up on (security) tasks/tickets to other departments

• Contributing to identity & access management (Conditional Access, MFA, Privileged Identity Management)

• Operationally monitoring configurations/changes that must be in line with guidelines and policies

• Keeping up with new developments and changes within the Microsoft ecosystem with a focus on security

• Actively performing/following up on incident response and threat hunting

• Broad (work) experience as a System Engineer is expected in order to make good assessments of events/incidents, to be able to formulate and implement the necessary improvement proposals after approval, etc.

• Evangelizing security policies, acting as an advisor for other departments or cases, …

Meticulous and structured

Strong at maintaining oversight. You ensure that security controls are present and correctly documented.

• Monitoring

• device compliance

• Microsoft Secure Score

• asset inventory

• lifecycle management of (operating) systems and applications

• security policy documents

• security processes and procedures

• Identifying and managing security incidents according to a process

Proper certification

You possess Cybersecurity-related certifications or equivalent.

• Microsoft Identity and Access Administrator

• Microsoft Certified Cybersecurity Architect Expert

• Azure Security Engineer

• …

Knowledge in your field

You have knowledge and understanding of security methodologies, best practices, and industry standards.

• Security frameworks such as Cyberfundamentals, NIST, CIS, and ISO27001

• Knowledge of NIS2 is an additional asset.

Proficient with relevant technologies

You know their importance and how to implement them securely.

• Active Directory/ADFS

• Microsoft Entra ID, MFA, Conditional Access

• Microsoft Endpoint Configuration Manager (MECM) / Intune

• Microsoft Defender Suite

• Azure

• VMWare

• Fortinet

• Cisco switching